Closed snyk-bot closed 1 year ago
This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.
🔍 Inspect: https://vercel.com/estruyf/doctor/8uHyUkvFAHriv4jmWNRaRkY5ve1X
✅ Preview: https://doctor-git-snyk-fix-ecd7bce9e365b1ff7fc55f7617b865d4-estruyf.vercel.app
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-ANSIREGEX-1583908
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-AXIOS-1579269
Why? Has a fix available, CVSS 8.6
SNYK-JS-JSONSCHEMA-1920922
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-LODASH-1018905
Why? Proof of Concept exploit, Has a fix available, CVSS 7.2
SNYK-JS-LODASH-1040724
Why? Has a fix available, CVSS 7.5
SNYK-JS-NORMALIZEURL-1296539
Why? Has a fix available, CVSS 7.4
SNYK-JS-PRISMJS-1314893
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-PRISMJS-1585202
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-WS-1296835
Why? Has a fix available, CVSS 5.4
SNYK-JS-XMLDOM-1084960
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @pnp/cli-microsoft365
The new version differs by 39 commits.Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic